Computer Security
[EN] securityvulns.ru no-pyccku


aptdaemon key validation vulnerability
Published:18.12.2012
Source:
SecurityVulns ID:12790
Type:m-i-t-m
Threat Level:
5/10
Description:PPA GPG key is validated incorrectly.
Affected:aptdaemon : aptdaemon 0.43
CVE:CVE-2012-0962 (Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle (MITM) attack.)
Original documentdocumentUBUNTU, [USN-1666-1] Aptdaemon vulnerability (18.12.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod